In QEMU 3.1.0, load_device_tree in device_tree.c calls the deprecated load_image function, which has a buffer overflow risk.
References
Configurations
History
07 Nov 2023, 02:56
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2019-05-31 22:29
Updated : 2023-12-10 12:59
NVD link : CVE-2018-20815
Mitre link : CVE-2018-20815
CVE.ORG link : CVE-2018-20815
JSON object : View
Products Affected
qemu
- qemu
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer